[Freeipa-devel] [PATCH] 0504 Default read ACIs for Sudo objects

Martin Kosek mkosek at redhat.com
Mon Apr 7 11:30:02 UTC 2014

On 04/03/2014 12:09 PM, Petr Viktorin wrote:
> Hello,
> This adds read permissions to read Sudo commands, command groups, rules.
> Read access is given to all authenticated users.

Looks good. What about "ou=sudoers"? I think we should also allow it in this
patch for authenticated users. This is the tree that clients use to read sudo.


More information about the Freeipa-devel mailing list